Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/IFv2PH2ANWZHIQgQdwdvimvPrgY.roa
File: IFv2PH2ANWZHIQgQdwdvimvPrgY.roa (raw, json)
Hash identifier: CUKFfenVqopy7h1r0DtF8xAc1owjRysAKhtoEU68UqQ=
Subject key identifier: 20:5B:F6:3C:7D:80:35:66:47:21:08:10:77:07:6F:8A:6B:CF:AE:06
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 018E33DCFF7A3EE121EF6A0062D68F596B48
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/IFv2PH2ANWZHIQgQdwdvimvPrgY.roa
Signing time: Tue 12 Mar 2024 18:11:45 +0000
ROA not before: Tue 12 Mar 2024 18:11:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8342
IP address blocks: 147.45.38.0/24 maxlen: 24
147.45.39.0/24 maxlen: 24
147.45.61.0/24 maxlen: 24
147.45.62.0/24 maxlen: 24
147.45.63.0/24 maxlen: 24
147.45.88.0/21 maxlen: 21
147.45.117.0/24 maxlen: 24
147.45.118.0/24 maxlen: 24
147.45.119.0/24 maxlen: 24
147.45.120.0/22 maxlen: 22
147.45.205.0/24 maxlen: 24
193.233.60.0/24 maxlen: 24
193.233.62.0/24 maxlen: 24
193.233.124.0/22 maxlen: 22
193.233.170.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 12 Apr 2024 15:56:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:33:dc:ff:7a:3e:e1:21:ef:6a:00:62:d6:8f:59:6b:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Mar 12 18:11:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=205bf63c7d8035664721081077076f8a6bcfae06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:d0:4a:06:ec:13:d6:3b:c6:ae:6a:69:22:57:
e8:be:d6:08:9a:64:a6:e7:d8:20:47:e9:2b:df:eb:
cb:b0:50:54:5d:31:5b:04:75:87:17:80:e9:d2:0f:
a2:6d:45:ee:bb:55:30:8f:8f:33:8e:32:07:41:09:
50:9c:5c:03:55:b9:99:57:c7:67:a3:55:fc:43:71:
3c:75:bf:00:14:93:cf:6f:57:23:f8:f0:07:5f:c3:
df:d6:96:ed:b8:b9:84:a1:7e:68:35:80:ee:1d:1c:
f9:23:f1:a3:92:27:5e:7c:f8:46:b6:d6:af:2a:31:
6e:d5:d3:a4:6b:66:54:60:0f:73:98:58:d4:cf:15:
99:f8:a5:76:ac:d6:73:12:6a:17:bf:81:5f:23:87:
2f:58:47:f9:32:8b:d5:09:4a:40:77:07:04:e9:95:
9b:66:c5:6f:4d:5d:21:df:e2:40:e1:7b:45:ac:84:
df:fa:ac:0c:89:80:4a:c3:0d:d1:09:6f:96:f8:80:
bb:45:77:52:67:0a:22:fb:73:0a:18:b7:92:7b:dd:
68:63:c7:96:f1:0c:23:d1:4c:b1:e9:31:6f:7d:74:
73:8c:2c:2b:08:c2:2f:b6:2a:2e:6e:70:50:46:9e:
70:86:f9:b9:84:07:fb:c2:5e:6e:bc:b4:73:83:7b:
0a:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:5B:F6:3C:7D:80:35:66:47:21:08:10:77:07:6F:8A:6B:CF:AE:06
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/IFv2PH2ANWZHIQgQdwdvimvPrgY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.45.38.0/23
147.45.61.0-147.45.63.255
147.45.88.0/21
147.45.117.0-147.45.123.255
147.45.205.0/24
193.233.60.0/24
193.233.62.0/24
193.233.124.0/22
193.233.170.0/24
Signature Algorithm: sha256WithRSAEncryption
25:09:3a:4d:60:02:6a:de:15:ff:1d:8d:f3:68:97:80:76:ee:
e0:92:3f:9c:12:d4:c5:ce:18:37:2a:31:b8:bf:ee:03:33:82:
38:4b:9b:8e:80:04:03:aa:64:06:2a:60:77:4e:ac:c9:e0:47:
e3:49:7b:3f:c3:ad:ac:0d:57:b2:ba:91:19:fb:20:03:74:59:
88:c0:7d:95:e9:f5:af:5f:bd:f5:d6:55:21:cf:4e:17:c4:62:
eb:df:e6:ed:3c:30:61:b2:7b:fa:88:bb:e3:f9:e8:31:38:3d:
48:de:70:b3:d2:de:65:92:ea:50:06:6a:0b:f0:a2:3d:cd:56:
c1:af:62:67:01:fb:64:a4:ac:ca:ff:d3:81:b3:72:9d:17:10:
70:6b:56:9f:22:5e:f2:79:7e:78:3e:3b:d4:26:80:62:d6:7c:
42:dd:6e:4f:77:2c:73:be:9c:ac:cb:25:82:20:2c:70:35:39:
e7:c1:01:63:6d:3e:8c:8b:5a:23:34:01:f2:68:91:53:4d:6e:
6f:05:4c:c7:38:00:7b:72:40:b2:2d:e7:6a:11:70:be:cb:ac:
36:78:52:6a:c8:70:60:f8:a0:a3:21:39:ad:40:5b:be:cf:88:
04:63:84:9a:10:a8:f1:41:73:c4:10:f4:02:1e:45:af:5f:59:
56:f7:b6:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 12 18:36:08 2024 by rpki-client on console-fra.rpki-client.org